CVE-2026-21375

Summary

Memory Corruption when accessing an output buffer without validating its size during IOCTL processing.

Affected Software

VendorProductVersion RangeStatus
Qualcomm, Inc.SnapdragonCologneaffected
Qualcomm, Inc.SnapdragonFastConnect 6700affected
Qualcomm, Inc.SnapdragonFastConnect 6900affected
Qualcomm, Inc.SnapdragonFastConnect 7800affected
Qualcomm, Inc.SnapdragonQCA0000affected
Qualcomm, Inc.SnapdragonQCM5430affected
Qualcomm, Inc.SnapdragonQCM6490affected
Qualcomm, Inc.SnapdragonQualcomm Video Collaboration VC3 Platformaffected
Qualcomm, Inc.SnapdragonSC8380XPaffected
Qualcomm, Inc.SnapdragonSnapdragon 460 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 662 Mobile Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon 7c+ Gen 3 Computeaffected
Qualcomm, Inc.SnapdragonSnapdragon 8cx Gen 3 Compute Platformaffected
Qualcomm, Inc.SnapdragonSnapdragon AR1 Gen 1 Platformaffected
Qualcomm, Inc.SnapdragonWCD9370affected
Qualcomm, Inc.SnapdragonWCD9375affected
Qualcomm, Inc.SnapdragonWCD9378Caffected
Qualcomm, Inc.SnapdragonWCD9380affected
Qualcomm, Inc.SnapdragonWCD9385affected
Qualcomm, Inc.SnapdragonWCN3950affected
Qualcomm, Inc.SnapdragonWCN3988affected
Qualcomm, Inc.SnapdragonWSA8830affected
Qualcomm, Inc.SnapdragonWSA8832affected
Qualcomm, Inc.SnapdragonWSA8835affected
Qualcomm, Inc.SnapdragonWSA8840affected
Qualcomm, Inc.SnapdragonWSA8845affected
Qualcomm, Inc.SnapdragonWSA8845Haffected
Qualcomm, Inc.SnapdragonX2000077affected
Qualcomm, Inc.SnapdragonX2000086affected
Qualcomm, Inc.SnapdragonX2000090affected
Qualcomm, Inc.SnapdragonX2000092affected
Qualcomm, Inc.SnapdragonX2000094affected
Qualcomm, Inc.SnapdragonXG101002affected
Qualcomm, Inc.SnapdragonXG101032affected
Qualcomm, Inc.SnapdragonXG101039affected

Weaknesses

  • CWE-126: CWE-126 Buffer Over-read

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References